Comment 14 for bug 1554288

Are you implying that there's no way to block access from tenant/project networks to the network on which Glance's registry service is exposed? Or are you saying in your particular test environment you deployed Glance in such a way that you exposed the registry endpoint to untrusted (non-admin/non-management) systems?